Patch/Configuration Management

Most Recent

Related Videos

A gold-colored computer chip is seen on a motherboard surround by glowing lights and circuits

Vulnerability Management

Intel and AMD chips still vulnerable to Spectre flaw

Steve ZurierOctober 29, 2024

New research finds that six years later, AMD and Intel processors can still be hit with speculative execution attacks.

Windows 11 start button on computer menu screen close up view

Networking

Windows Update takeover lets an attacker revive a patched flaw

Steve ZurierOctober 28, 2024

SafeBreach argues that Microsoft’s narrow definition of a flaw leaves the Windows kernel open to attacks.

Vulnerability Management

Tourists, Fortis, apps, TLP, AWS, Google, Chatbots, Aaran Leyland, and More… – SWN #425

October 25, 2024

Tourist Abuse, Fortis, apps, TLP, AWS, Google, Chatbots, Aaran Leyland, and More, on this edition of the Security Weekly News.

Cisco sign near Cisco headquarters campus in Silicon Valley.

Vulnerability Management

Actively exploited Cisco ASA, FTD vulnerability addressed

SC StaffOctober 25, 2024

Threat actors could exploit the vulnerability, which stems from resource exhaustion, to facilitate a denial-of-service condition in impacted devices' RAVPN service, said Cisco.

Vulnerability Management

Doom Brain, E2EE, OT, Adload, Cisco, VMware, internet archive, Josh Marpet … – SWN #424

October 22, 2024

Doom on a Human Brain, E2EE, OT, Adload, Cisco, VMware, Internet Archive, Josh Marpet, and more on the Security Weekly News.

Vulnerability Management

VMware patching of identified vCenter RCE hits snag

SC StaffOctober 22, 2024

Such a flaw — which is a heap overflow in the platform's Distributed Computing Environment / Remote Procedure Call protocol — could be leveraged by threat actors with vCenter Server network access to facilitate code execution through a custom network packet.

Vulnerability Management

Roundcube credentials targeted via patched XSS vulnerability

SC StaffOctober 21, 2024

Attackers targeted a government organization in a country part of the Commonwealth of Independent States with an email containing a concealed attached document and distinct tags within its body that facilitate arbitrary JavaScript execution.

Vulnerability Management

Grafana critical vulnerability risks remote code execution

Laura FrenchOctober 18, 2024

The experimental SQL Expressions feature contains a flaw due to insufficient query sanitization.

Patch/Configuration Management

Related Videos

A couple simple steps companies can take to protect their systems from ransomware

Intel and AMD chips still vulnerable to Spectre flaw

Windows Update takeover lets an attacker revive a patched flaw

Tourists, Fortis, apps, TLP, AWS, Google, Chatbots, Aaran Leyland, and More… – SWN #425

Actively exploited Cisco ASA, FTD vulnerability addressed

Doom Brain, E2EE, OT, Adload, Cisco, VMware, internet archive, Josh Marpet … – SWN #424

VMware patching of identified vCenter RCE hits snag

Roundcube credentials targeted via patched XSS vulnerability

Grafana critical vulnerability risks remote code execution

Fast Five

Selected by the SC Media Editorial team every Tuesday.